[ahathe]

I had done some online banking and immediately after finishing I received a text into my iphone under the name of my bank stating that suspicious activitiy had occured. As it came into the banking text with legitimate texts, I initially thought it was legit.  I typed into my browser the adress that they gave 192. etc and entered my customer number but at that point had a feeling something was not right so I phoned the bank who assured me it was a scam.  As my computer had been running very noisily prior to that, I took the opportunity to wipe it and reload everything including SP updates etc and put MCAfee on as well (Norton was on prior to this but I had purchased Norton for another computer).

 

I suppose I am just terrified that something is lurking deep in the system or in files that I have loaded back onto the computer and, as I am about to move house, the thought of some little thief legging off with my deposit is too scary to contemplate.  

 

I pasted the files as requested, and I guess I am really looking for assurance that the computer is safe to use again and wondered if there is any indication there of why it was so noisy before.  It is not noisy now!

 

http://pastebin.com/UsXQgrMS

 

Was unable to paste in here - so the chat helpline told me to put in paste bin and copy link here - thanks

Edited by ahathe, 27 April 2015 - 02:00 PM.

[Advertisements]

Hi and Welcome to G2G
 

I took the opportunity to wipe it and reload everything including SP updates etc

Because you did you this, your computer is currently clean and yes it is safe to use again. Nice job.
 

wondered if there is any indication there of why it was so noisy before.  It is not noisy now!

Since we don't have logs from when this was happening it's impossible to provide a definitive answer. You could have very well had malware that was running on your machine causing your CPU to work overtime or it could be a host of other non-malware reasons.
 
I reviewed your logs just to be on the safe side and the only thing I would recommend is to uninstall Java™ 6 Update 14 as it's outdated and as a result vulnerable. You already have the current version of Java installed.
 
If you have any other questions please let me know. If not following is some information to help keep you updated and safe.
 
Part of our jobs here at G2G is to help you clean your computer. But beyond that and just as important is to provide you with some information to keep you safe and secure on the net as well as to share knowledge. Following is that information.
 

1. Windows Updates
Another essential task is to keep your computer updated with the latest operating system patches and security fixes. Windows Updates are constantly being revised to combat the newest hacks and threats. Microsoft releases security updates that help your computer from becoming vulnerable. It is best if you have these set to download automatically. Follow the instructions below to ensure your settings are optimal.
1. Click the Start Orb in the lower left corner of the screen.
2. Type Windows Update in the search box that appears
3. Click on the Windows Update program that appears in the search results.

4. Click on Change Settings.

5. Select "Install updates automatically (recommended)" from the Important updates drop-down.

6. Choose a day and a time when you know the computer will be on and connected to the internet. The default is 3:00AM every day.
7. Ensure that all of the other check boxes are checked.
8. Click OK.
 
2. Keeping Programs Updated
You need to ensure that any programs installed on your machine are kept current. The bad guys exploit vulnerabilities that are found in older versions of software. A very good piece of software that keeps your programs up-to-date is Secunia Personal Software Inspector (PSI). You can download and install it from here. You can read more information about this free software as well as a video walkthrough from here.
 
3. Antimalware- Preventative
A very good program to download and install that will complement your Antivirus is Malwarebytes. Malwarebytes is an anti-malware software and not an antivirus software so it won't conflict with the Antivirus that you are running. I would recommend that you open up this program, allow it to update and scan your machine at least quarterly...monthly if you can.
 
4. Crypto Warning!!!! - Complete Data Loss can occur!
There are particularly nasty infections out there at the moment that encrypt your data and hold it for ransom. You may read more about this here.

• Download CryptoPrevent free for home use here following the instructions below.
• Save the file to your desktop from the link above and then open the program by clicking Run when prompted from your browser or by going to the desktop where the file was saved and double-clicking.
• Accept all the defaults during the install. The last screen of the install has a checkmark in "Launch CryptoPrevent". This is good and will launch the program once you click Finish.
• You will get a prompt asking if you purchased a Product Key for Automatic Updates. You can answer No.
• You will then be prompted to learn more about automatic updates or if you want to purchase a key. This is up to you but you don't have to.
• You will be prompted to click OK to continue and select your protection level. Go ahead and click OK.
• Click the Apply button to set Default protection.
• You may get a message stating that Windows Sidebar and Desktop Gadgets are a major security vulnerability and asking you if you want to disable them. If you don't use these features, answer Yes.
• That's it. The protection is in place.

Note: The free version doesn't provide automatic updates. Periodically, you should open up the program (there is a shortcut on your desktop now) and select the Updates! menu....and select Check for Updates to see if there are any as this infection has serious consequences.
 

 
 
 
For more information about computer security and how to protect yourself when on the internet, please read this guide Best Practices for Safe Computing
 
OK, all the best, and stay safe!
 
 

[BrianDrab]

Hi and Welcome to G2G
 

I took the opportunity to wipe it and reload everything including SP updates etc

Because you did you this, your computer is currently clean and yes it is safe to use again. Nice job.
 

wondered if there is any indication there of why it was so noisy before.  It is not noisy now!

Since we don't have logs from when this was happening it's impossible to provide a definitive answer. You could have very well had malware that was running on your machine causing your CPU to work overtime or it could be a host of other non-malware reasons.
 
I reviewed your logs just to be on the safe side and the only thing I would recommend is to uninstall Java™ 6 Update 14 as it's outdated and as a result vulnerable. You already have the current version of Java installed.
 
If you have any other questions please let me know. If not following is some information to help keep you updated and safe.
 
Part of our jobs here at G2G is to help you clean your computer. But beyond that and just as important is to provide you with some information to keep you safe and secure on the net as well as to share knowledge. Following is that information.
 

1. Windows Updates
Another essential task is to keep your computer updated with the latest operating system patches and security fixes. Windows Updates are constantly being revised to combat the newest hacks and threats. Microsoft releases security updates that help your computer from becoming vulnerable. It is best if you have these set to download automatically. Follow the instructions below to ensure your settings are optimal.
1. Click the Start Orb in the lower left corner of the screen.
2. Type Windows Update in the search box that appears
3. Click on the Windows Update program that appears in the search results.

4. Click on Change Settings.

5. Select "Install updates automatically (recommended)" from the Important updates drop-down.

6. Choose a day and a time when you know the computer will be on and connected to the internet. The default is 3:00AM every day.
7. Ensure that all of the other check boxes are checked.
8. Click OK.
 
2. Keeping Programs Updated
You need to ensure that any programs installed on your machine are kept current. The bad guys exploit vulnerabilities that are found in older versions of software. A very good piece of software that keeps your programs up-to-date is Secunia Personal Software Inspector (PSI). You can download and install it from here. You can read more information about this free software as well as a video walkthrough from here.
 
3. Antimalware- Preventative
A very good program to download and install that will complement your Antivirus is Malwarebytes. Malwarebytes is an anti-malware software and not an antivirus software so it won't conflict with the Antivirus that you are running. I would recommend that you open up this program, allow it to update and scan your machine at least quarterly...monthly if you can.
 
4. Crypto Warning!!!! - Complete Data Loss can occur!
There are particularly nasty infections out there at the moment that encrypt your data and hold it for ransom. You may read more about this here.

• Download CryptoPrevent free for home use here following the instructions below.
• Save the file to your desktop from the link above and then open the program by clicking Run when prompted from your browser or by going to the desktop where the file was saved and double-clicking.
• Accept all the defaults during the install. The last screen of the install has a checkmark in "Launch CryptoPrevent". This is good and will launch the program once you click Finish.
• You will get a prompt asking if you purchased a Product Key for Automatic Updates. You can answer No.
• You will then be prompted to learn more about automatic updates or if you want to purchase a key. This is up to you but you don't have to.
• You will be prompted to click OK to continue and select your protection level. Go ahead and click OK.
• Click the Apply button to set Default protection.
• You may get a message stating that Windows Sidebar and Desktop Gadgets are a major security vulnerability and asking you if you want to disable them. If you don't use these features, answer Yes.
• That's it. The protection is in place.

Note: The free version doesn't provide automatic updates. Periodically, you should open up the program (there is a shortcut on your desktop now) and select the Updates! menu....and select Check for Updates to see if there are any as this infection has serious consequences.
 

 
 
 
For more information about computer security and how to protect yourself when on the internet, please read this guide Best Practices for Safe Computing
 
OK, all the best, and stay safe!
 
 

[ahathe]

WOW! Such a quick response - I am very grateful. Thank you for the very helpful tips as well. I will indeed carry out your suggestions, java 6 update - can you tell me how I remove this please as I am not an expert in these matters!

I have the automatic uploads switched on and I will download the other pieces of software that you suggest as well - thanks again for your fast response.

[ahathe]

Sorry, meant to ask - will the crypto thing work okay with McAfee, as they used to say not to have two virus protections running at the same time - I assume this is not the case with this? I saw you mentioned in the malware protection that it worked okay with virus software

[BrianDrab]

java 6 update - can you tell me how I remove this please as I am not an expert in these matters!

 

Instructions for doing so are here.

Look for Java™ 6 Update 14 in the add/remove list and uninstall.

 

will the crypto thing work okay with McAfee

Yes it will. It's not an Antivirus. It's software that was designed to try and prevent the Crypto-variants of malware from encrypting your data.

[BrianDrab]

Since this issue appears to be resolved ... this Topic has been closed. Glad we could help.

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.